Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0WksowlZR_PoC6HX88CIQ_tErjg.roa
File: 0WksowlZR_PoC6HX88CIQ_tErjg.roa (raw, json)
Hash identifier: nubAQ0CMCI+p5vvigTyJmT3X8X2/o5uShfsUIee3qAQ=
Subject key identifier: D1:69:2C:A3:09:59:47:F3:E8:0B:A1:D7:F3:C0:88:43:FB:44:AE:38
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 180A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0WksowlZR_PoC6HX88CIQ_tErjg.roa
Signing time: Mon 10 Feb 2025 14:07:31 +0000
ROA not before: Mon 10 Feb 2025 14:07:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 123.205.64.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6154 (0x180a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 10 14:07:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D1692CA3095947F3E80BA1D7F3C08843FB44AE38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:63:ec:6d:ff:72:5e:fa:7c:22:25:85:3a:29:
90:9f:f3:53:aa:f0:88:b9:0e:bd:09:b3:40:2d:3b:
47:f7:20:25:37:8f:a0:07:b8:83:21:a6:b6:d6:fe:
46:c3:72:52:45:39:4a:f0:ed:45:02:5d:4b:51:7e:
4b:f0:b1:da:a8:5d:08:d0:1e:07:28:eb:0a:c0:ea:
18:25:bf:7d:ce:a8:37:89:6e:db:e3:25:82:ec:cc:
46:b2:3c:42:ac:e3:48:bb:22:3d:ed:b8:ab:56:74:
0f:a9:50:6d:55:5d:11:94:14:e7:c7:1b:b5:dc:35:
67:6a:23:f3:98:64:5f:35:ba:3e:05:b3:40:5e:75:
f7:5d:b3:8c:dd:6b:5e:a0:32:48:a4:10:ab:08:f4:
af:b1:18:45:3a:04:f8:83:20:7f:c0:c6:dd:da:ef:
4e:ec:a0:8e:72:a4:f6:bc:d6:ea:54:d8:1a:ef:54:
46:41:48:05:59:17:b5:47:cb:89:88:11:73:a0:79:
eb:cc:c6:76:6a:de:09:7c:32:bb:69:fe:e5:e3:9e:
88:bb:0b:95:80:58:b6:46:b5:5e:2b:92:fb:f5:ba:
96:9c:fa:a8:e8:e9:de:6c:fc:b9:84:aa:cc:17:ff:
2c:4e:6e:5e:1e:69:f0:7e:56:6d:b9:c1:ca:33:49:
8d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:69:2C:A3:09:59:47:F3:E8:0B:A1:D7:F3:C0:88:43:FB:44:AE:38
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0WksowlZR_PoC6HX88CIQ_tErjg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.64.0/19
Signature Algorithm: sha256WithRSAEncryption
a6:c1:3a:1b:5a:3f:b6:7c:a9:69:39:6a:0d:03:7d:05:31:5d:
ba:41:74:53:09:58:81:00:0e:61:fd:c7:5c:90:c7:d5:e2:5f:
3f:80:6d:3f:f0:72:1c:19:97:ea:74:22:33:ab:c7:91:88:e7:
34:c7:a0:80:59:b0:70:e8:ec:e2:ab:32:77:b2:02:33:02:59:
c4:7e:0c:15:19:a5:b1:9a:bf:43:f5:b5:6f:37:cb:bb:17:98:
e8:92:88:02:4d:fd:36:e2:55:b6:c1:d3:d8:7a:a2:d2:ba:1c:
c5:75:c6:5d:39:95:60:56:b2:ac:76:ec:87:55:5d:e4:0e:b6:
7e:e2:2a:cb:82:2b:4c:7a:e3:6c:e4:73:6e:b2:83:fd:0b:78:
e6:79:2c:f9:6c:61:12:09:8a:8e:6c:12:30:86:0a:f2:82:1f:
bd:52:62:6d:7b:64:33:72:a4:bc:24:af:f0:6c:a9:c2:e1:b1:
32:12:6b:38:b0:30:ab:9b:30:15:f5:1c:00:ac:e1:88:2a:db:
9c:b9:4c:8c:a9:a3:96:8d:0f:fa:ae:f2:3b:68:d7:94:0f:4b:
8d:d0:b5:08:01:bb:07:10:16:33:0f:f4:6f:b4:f2:25:a8:6f:
1a:d2:a9:91:be:20:b1:82:7e:f3:04:59:62:8d:eb:92:0e:09:
70:2d:84:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:06:25 2025 by rpki-client